nixpkgs/pkgs/tools/security/notation/default.nix
2024-01-25 16:33:40 +08:00

39 lines
1.0 KiB
Nix

{ lib, buildGoModule, fetchFromGitHub, testers, notation }:
buildGoModule rec {
pname = "notation";
version = "1.1.0";
src = fetchFromGitHub {
owner = "notaryproject";
repo = pname;
rev = "v${version}";
hash = "sha256-MJBFdtx+HkPCN1SIohKOy33BW746GNN2fWkr7TIuBmk=";
};
vendorHash = "sha256-USkufc1dG4eyRfRJHSX4mVZHnvOc5onHenF98Aedac4=";
# This is a Go sub-module and cannot be built directly (e2e tests).
excludedPackages = [ "./test" ];
ldflags = [
"-s"
"-w"
"-X github.com/notaryproject/notation/internal/version.Version=${version}"
"-X github.com/notaryproject/notation/internal/version.BuildMetadata="
];
passthru.tests.version = testers.testVersion {
package = notation;
command = "notation version";
};
meta = with lib; {
description = "CLI tool to sign and verify OCI artifacts and container images";
homepage = "https://notaryproject.dev/";
license = licenses.asl20;
maintainers = with maintainers; [ aaronjheng ];
mainProgram = "notation";
};
}